[SECURITY] [DLA 1380-1] libmad security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1380-1] libmad security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Fri, 18 May 2018 09:33:53 +0200
Message-id: <[🔎] 06420595-727c-d8c8-ef07-18a67975446c@debian.org>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : libmad
Version        : 0.15.1b-7+deb7u1
CVE ID         : CVE-2017-8372 CVE-2017-8373 CVE-2017-8374

Several vulnerabilities were discovered in MAD, an MPEG audio decoder
library, which could result in denial of service if a malformed audio
file is processed.

For Debian 7 "Wheezy", these problems have been fixed in version
0.15.1b-7+deb7u1.

We recommend that you upgrade your libmad packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=V0l6
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1379-1] curl security update
Next by Date: [SECURITY] [DLA 1381-1] imagemagick security update
Previous by thread: [SECURITY] [DLA 1379-1] curl security update
Next by thread: [SECURITY] [DLA 1381-1] imagemagick security update
Index(es):
- Date
- Thread